Intro

• Used to broadcast messages
• Pub-Sub model (publisher publishes messages to a topic, subscribers listen to the topic)
• Instant message delivery (does not queue messages)

Encryption

• In-flight encryption by default using HTTPS API
• At-rest encryption using KMS keys (optional)
• Client-side encryption

Access Management

• lAM policies to regulate access to the SNS API
• SNS Access Policies (resource based policy)
  • Used for cross-account access to SNS topics
  • Used for allowing other AWS services to publish to an SNS topic

Standard Topics

• Highest throughput
• At least once message delivery
• Best effort ordering
• Subscribers can be:
  • SQS queues
  • HTTP / HTTPS endpoints
  • Lambda functions
  • Emails (using SNS)
  • SMS & Mobile Notifications
  • KDF to send the data into S3 or Redshift

FIFO Topics

• Guaranteed ordering of messages in that topic